CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
Vulnerability of the rndis_set_response() function in the rndis component of the Linux kernel is related to the
βBufOffset + 8β operation, which can cause an integer overflow. Exploitation of the vulnerability
could allow an attacker to cause a denial of service
A vulnerability in the drm/vrr component of the Linux operating system kernel is related to a driver attempt to call the
drm core set prop() function without a connection. Exploitation of the vulnerability could allow an attacker to cause a
denial of service
Vulnerability of ice_update_vsi_tx_ring_stats() function in ice component of Linux operating system kernel
is related to dereferencing a NULL pointer in a procedure that updates Tx statistics. Exploitation of the
of the vulnerability could allow an attacker to cause a denial of service
Vulnerability in the net/packet component of the Linux kernel is related to access outside of the
slab boundaries in packet_recvmsg(). Exploitation of the vulnerability could allow an attacker to affect the
confidentiality, integrity and availability of protected information
A vulnerability in the ice component of the Linux operating system kernel is related to the appearance of a race condition that
can lead to interlocking when an interface leaves the LAG and immediately re-enters the LAG.
Exploitation of the vulnerability could allow an attacker to cause a denial of service
A vulnerability in the tracing/osnoise component of the Linux operating system kernel is related to improper handling of
permissions. Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity
and availability of protected information
Vulnerability in the gadget component of the Linux operating system kernel is related to a usage error after a
memory release due to failure to install udcβdev.driver. Exploitation of the vulnerability could allow an attacker to
cause a denial of service
A vulnerability in the mpt3sas component of the Linux operating system kernel is related to the release of an invalid
pointer or reference. Exploitation of the vulnerability could allow an attacker to cause a denial of service
A vulnerability in the vmscan component of the Linux operating system kernel is related to incorrect locking.
Exploitation of the vulnerability could allow an attacker to cause a denial of service